Tue, 03 Apr 2018 09:14:00 +0000
CST-7042 Open redirect vulnerability in Asset Publisher
Open redirect vulnerability in the Asset Publisher application allows remote attackers to redirect users to arbitrary web sites.
There is no patch available for Liferay Portal 7.0 CE GA5. Instead, users should upgrade to Liferay Portal 7.0 CE GA6 (7.0.5) or later to fix this issue.